The core rule: Only submit URLs that you own or have explicit written authorization to scan. VibeClear is a defensive security tool — it exists to help you protect your own app, not to scan or gather information about anyone else's.
This Acceptable Use Policy ("AUP") defines how you may and may not use VibeClear's security audit services. By using our services, you agree to this policy in full.
Security tools carry inherent responsibility. Scanning infrastructure without authorization is illegal in most jurisdictions — including under the Computer Fraud and Abuse Act (CFAA) in the US, the Computer Misuse Act in the UK, and equivalent laws worldwide. This policy ensures VibeClear is used only for its intended purpose: helping people secure their own applications.
You must have one of the following before submitting a URL:
⚠️ Verbal authorization is not sufficient. "I think they wouldn't mind" is not authorization. If you are unsure whether you have authorization, you do not have authorization. Scanning without clear authorization violates this policy, our Terms of Service, and potentially criminal law in your jurisdiction.
The following are strictly prohibited and will result in immediate termination, forfeiture of payment, and may be reported to law enforcement:
If you believe someone is using VibeClear to scan your application without authorization, contact us immediately at hello@vibeclear.ai with the subject "AUP Violation Report." We investigate promptly and will cooperate fully with any legal action you choose to pursue.
For security researchers: If you've discovered a vulnerability in VibeClear's own infrastructure, please disclose it responsibly to hello@vibeclear.ai. We respond within 48 hours and appreciate responsible disclosure.
We may update this AUP as our services evolve or new misuse patterns emerge. Material changes will be communicated via email and posted here with an updated effective date. Questions? Contact hello@vibeclear.ai.